Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS198510.roa
File: AS198510.roa (raw, json)
Hash identifier: KL4s0pE+uijpRmP7Z42T5nzIMPJqNk6t4qlFXVOvIn8=
Subject key identifier: 8C:D3:1A:E5:BB:DA:64:E9:4C:A4:A4:73:2E:CB:20:61:6F:48:1C:8B
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 7856733C3D8260012B9AC7665DAA7F83E976D5F0
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS198510.roa
Signing time: Mon 08 Jan 2024 16:35:57 +0000
ROA not before: Mon 08 Jan 2024 16:30:57 +0000
ROA not after: Mon 06 Jan 2025 16:35:57 +0000
asID: 198510
IP address blocks: 181.215.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:56:73:3c:3d:82:60:01:2b:9a:c7:66:5d:aa:7f:83:e9:76:d5:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jan 8 16:30:57 2024 GMT
Not After : Jan 6 16:35:57 2025 GMT
Subject: CN=8CD31AE5BBDA64E94CA4A4732ECB20616F481C8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:54:22:fd:07:11:e1:e7:27:b3:b2:87:8e:f9:
3a:76:e0:54:8f:2c:d8:ac:25:f5:ee:0a:0e:ba:e6:
f4:b7:00:53:69:50:2c:09:09:70:3a:74:c7:93:84:
31:6f:d8:7c:53:8e:8b:15:78:7b:54:97:a7:c2:43:
06:0f:dd:a5:77:e2:3e:ad:39:31:a4:6a:e7:25:e6:
8e:41:b0:2f:aa:41:90:49:9a:14:44:82:d2:54:5f:
7f:5c:65:fa:e5:4a:03:2c:6d:84:42:e3:55:e8:38:
07:4b:c6:2a:cc:f8:55:91:6d:c8:5e:52:13:ac:ac:
bf:15:c1:01:cf:9d:e8:bc:7e:af:97:4c:29:61:58:
cc:db:c3:ed:00:54:6c:30:20:76:d4:70:1c:72:e7:
e3:5b:6f:36:da:f4:3b:2e:58:55:47:4c:7b:35:b0:
52:c2:d0:32:41:96:39:cc:d8:f9:26:f3:f6:94:67:
8a:91:c1:21:85:58:6c:88:3a:8e:92:7a:55:8b:cd:
2d:55:cb:63:9b:50:70:68:e0:b4:17:7f:ed:65:fb:
e2:63:8b:29:e8:bf:e3:b6:f7:ba:4b:85:b8:ee:94:
14:ab:fc:5e:7b:db:aa:9b:80:d8:48:f8:62:cb:78:
6a:94:cb:fa:ca:6d:e9:b3:a8:1f:1e:73:db:f4:1e:
dc:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:D3:1A:E5:BB:DA:64:E9:4C:A4:A4:73:2E:CB:20:61:6F:48:1C:8B
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS198510.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.215.225.0/24
Signature Algorithm: sha256WithRSAEncryption
08:4c:42:4c:c7:2d:ef:f3:1c:42:88:0f:8d:a8:5c:8e:46:31:
2c:7a:b1:c6:07:5f:52:00:15:d0:34:38:57:d9:14:c4:bd:90:
16:52:56:1c:91:ae:df:21:db:4f:b0:38:cf:ce:94:72:6a:20:
09:90:8c:16:91:4e:81:52:78:b5:63:0b:fb:97:84:91:2e:28:
0c:dc:c7:e2:2f:8d:f2:5b:34:e6:cf:f8:db:62:21:a3:89:a9:
85:d0:06:85:88:a8:ac:fc:73:e5:fe:b1:2b:da:80:8c:98:42:
1f:b5:89:a6:98:67:7f:47:aa:dc:f9:e4:ff:d6:7a:8a:95:95:
62:ed:d8:06:77:69:fc:65:9a:d2:c1:1a:8d:10:24:bc:2f:8d:
96:78:4f:5a:b4:88:52:1d:c8:b3:cf:52:ab:f6:a1:f2:a8:ed:
ab:85:2a:0e:26:a9:e5:75:9f:4a:bc:56:7e:aa:2a:ef:0e:7d:
c3:a7:75:2d:2b:87:6d:c5:f6:5f:01:5b:01:f3:8f:30:8f:5f:
c1:47:df:1e:a9:69:b0:49:c5:1c:de:c3:88:2a:70:b4:14:72:
2d:7d:97:78:1d:e4:01:ec:39:2f:6f:26:ea:c9:45:f3:7b:81:
7a:53:6c:23:16:f4:8f:ac:f2:b6:24:68:ff:c8:1c:1c:a3:80:
db:94:77:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:21:39 2025 by rpki-client